Antivirus protection in Kerio Connect

Kerio Connect includes Kerio Antivirus, an integrated protection against malicious emails with viruses. Viruses may infect your computer and cause harm to your files or to your computer system.

Configuring Kerio Antivirus

1. In the administration interface, go to Configuration > Content Filter > Antivirus.
2. Select the option Use the integrated Kerio Antivirus engine.
3. To update the virus database automatically, select Check for update every [hours]. If any new update is available, it is downloaded automatically. Kerio Connect downloads the database files via the HTTPHypertext Transfer Protocol - A protocol for exchange of hypertext documents in HTML. protocol. Provide a persistent connection and allow the communication on your firewall or proxy server.
4. Select the action for messages that contain a virus. Kerio Connect can either Discard the message or Deliver the message with the malicious code removed.
5. In addition, you can select from two options for forwarding messages. Choose either to Forward the original message to an administrator address or Forward the filtered message to an administrator address
6. For any message that Kerio Antivirus cannot scan, Kerio Connect can either Deliver the original message with a warning prefixed or Reject the message as if it was a virus
7. Click Apply.

Updating the antivirus database

After you install Kerio Connect, you must download the initial Kerio Antivirus definitions. Without it, your mail queue will be stopped.

The update starts automatically shortly after you install/update the server.

If your Kerio Connect server is behind firewall, allow HTTPSSecure version of secured by SSL. connection to:

• bdupdate.kerio.com
• bdupdate-cdn.kerio.com

Configuring the HTTP proxy server

If the computer with Kerio Connect is behind a firewall, you can use a proxy server to check for virus database updates.

To configure the proxy server:

1. Go to Configuration > Advanced Options > HTTP Proxy.
2. Select Use HTTP proxy for antivirus updates...
3. Type the address and port of the proxy server.
4. If the proxy server requires authentications, select Proxy server requires authentication.
5. Type the username and password.
6. Click Apply.

Go to Configuration > Content Filter > Antivirus and click Update Now to check the connection.

External antivirus

Kerio Technologies issued an Antivirus SDK for Kerio Connect and Kerio Control. The Antivirus SDK includes a public API that you can use to write plugins for third-party antivirus solutions.

Read Using external antivirus with Kerio products and this Kerio Blog post for detailed information.

Filtering message attachments

For information on scanning message attachments, read Filtering message attachments in Kerio Connect.

Troubleshooting

To view the statistics for Kerio Connect antivirus control, go to Status > Statistics. This section displays the number of messages checked, viruses detected, and prohibited attachments.

You can also consult the following logs:

• Security - For information about virus database updates.
• Debug - Right-click the Debug log area and enable Messages > Antivirus Checking